DNS Query Analyzer
Perform real-time DNS queries for A, AAAA, MX, CNAME, TXT, NS, and SOA records using Cloudflare Secure Resolver.
This interactive client-side tool is part of the NervLink Cybersecurity Suite. All analysis is verified entirely inside the local browser sandbox for maximum safety and data privacy compliance.
How It Works
- Input the hostname target and select the specific record type (A, AAAA, MX, CNAME, etc.).
- The system queries the secure Cloudflare DNS-over-HTTPS (DoH) API client-side.
- The server responses are parsed, returning record values, dynamic TTLs, and resolving IP mappings.
Primary Use Cases
- Verifying MX record mappings for corporate email security postures.
- Diagnosing DNS misconfigurations or routing propagation delays.
- Mapping public endpoints and aliases during infrastructure scoping audits.
Common Security Pitfalls
- Confusing DNS record caching with live propagation changes.
- Not configuring SPF and DKIM records in TXT parameters, leaving domains vulnerable to email spoofing.
Frequently Asked Questions
- What does TTL stand for in DNS records?
- TTL stands for Time To Live. It specifies how long in seconds a resolver should cache the DNS record query before asking the authoritative server again.
- Why does my DNS query not match my sitemap IP?
- If you use Cloudflare or CDNs, queries return the CDN's proxy IPs rather than the origin server IP to shield the server from DDoS attacks.
References & Standards